From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep

Unlock the full course today

Join today to access over 24,700 courses taught by industry experts.

Support incident response

Support incident response

From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep

Start my 1-month free trial Buy for my team

Support incident response

- [Instructor] Before any security incidents occur in production, you'll want to have a plan in place to determine how you'll respond to those incidents. In order to build an effective incident response program, you'll want to understand concepts like root cause analysis, incident triage, and forensics. There's a popular saying among cybersecurity professionals. It's not a matter of if you're going to have a security incident, it's a matter of when. I know that sounds cynical, but in my opinion, it's more pragmatic. Whether it's human error or a sophisticated cybercriminal or just bad luck, the chances of you experiencing a security incident are greater than zero. Instead of bearing your head in the sand, the responsible thing for you to do is to plan ahead so that you can respond to those incidents with a clear mind. Special Publication 800-61 of the US National Institute and Standards Technology outlines an incident response lifecycle with four stages. During the preparation stage…

Contents